Well, I got a surprisingly polite e-mail from Microsoft a few minutes ago. It appears that some l33t skr1pt k1dd33 put a Hotmail phishing script on Filespace a few months ago. Fortunately, he was too stupid to make his PHP work (it was posted during the period when the server was misconfigured, allowing users to upload .htaccess files that gave them PHP), so no harm seems to have been done.

It mimicked the Hotmail login page; presumably the account's owner then tricked people into using that page instead of the one on Hotmail.com. Or would have, if he ever got the thing to work, which I don't think he did. *rolls eyes*